CVE-2007-6731
published 2009-09-13CVE-2007-6731: Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check…
PriorityP356critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
14.07%
96.1th percentile
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| claudio_matsuoka | extended_module_player | <= 2.5.1 | — |
| claudio_matsuoka | extended_module_player | — | — |
| claudio_matsuoka | extended_module_player | — | — |
| claudio_matsuoka | extended_module_player | — | — |
| claudio_matsuoka | extended_module_player | — | — |
| claudio_matsuoka | extended_module_player | — | — |
| claudio_matsuoka | extended_module_player | — | — |
| claudio_matsuoka | extended_module_player | — | — |
| claudio_matsuoka | extended_module_player | — | — |
| debian | xmp | < xmp 2.6.1-1 (bookworm) | xmp 2.6.1-1 (bookworm) |
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL
vendor_debian10.0LOW
vendor_redhat10.0CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5xjw-36fw-5xm4: Extended Module Player (XMP) 2
ghsa_unreviewed·2022-05-01
CVE-2007-6731 [HIGH] CWE-94 GHSA-5xjw-36fw-5xm4: Extended Module Player (XMP) 2
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.
OSV
CVE-2007-6731: Extended Module Player (XMP) 2
osv·2009-09-13·CVSS 10.0
CVE-2007-6731 [CRITICAL] CVE-2007-6731: Extended Module Player (XMP) 2
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.
Red Hat
xmp: Multiple buffer overflows in OXM decoder
vendor_redhat·2007-12-27·CVSS 10.0
CVE-2007-6731 [CRITICAL] xmp: Multiple buffer overflows in OXM decoder
xmp: Multiple buffer overflows in OXM decoder
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.
Debian
CVE-2007-6731: xmp - Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute...
vendor_debian·2007·CVSS 10.0
CVE-2007-6731 [CRITICAL] CVE-2007-6731: xmp - Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute...
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.
Scope: local
bookworm: resolved (fixed in 2.6.1-1)
bullseye: resolved (fixed in 2.6.1-1)
forky: resolved (fixed in 2.6.1-1)
sid: resolved (fixed in 2.6.1-1)
trixie: resolved (fixed in 2.6.1-1)
No detection rules found.
2009-09-13
Published